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IN THE CLAIMS: 

1 . (Previously presented) A method for securing a transaction in order to prevent 
fraudulent transactions, said method comprising: 

receiving* prior to liie transaction^ a secret master key from a third party > wherein 
the master key remains unchanged and is kept secret, and is not altered after the 
transaction, the third party storing a copy of the master key; 

receiving a request for a digest from a requestor; 

retrieving the master key; 

retrieving unique client information; 

the client information being associated with the master key; 

creating the digest by hashing the unique client infonnation and the master key; 

and 

returning the digest and the unique client information to the requestor, wherein 
the digest and the unique client information will be used for transacting with the third 
party. 

2. (Original) The method recited in claim 1 above, wherein the request further 
comprises unique requestor information and creating the digest further comprises hashing 
the unique requestor infonnation. 

3. (Original) The method recited in claim 1 above, wherein the request includes unique 
merchant information which is used to access the master key. 

4. (Original) The method recited in claim 1 above, wherein the unique client 
information includes a reference number, the reference number being one of a plurality of 
reference numbers provided to the client by the third party. 

5. (Original) The method recited in claim 1 above, wherein creating the digest by 
hashing is performed by a smart card. 
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6. (Original) The method recited in claim 1 above further comprises encrypting the 
unique client information prior to retrieving the unique client information. 

7. (Currently amended) The method recited in claim 1 2 above, wherein the 
transaction is a credit card transaction, the third party is a credit card issuer and the 
requestor is a merchant, further wherein the unique requestor information includes 
information describing at leaat ono of a merchant identifier which is specific to the credit 
card issuer, a transaction identifier which is specific to the credit card issuer and purchase 
information which is specific to a purchase initiated by the client 

8. (Previously presented) A method for securing a transaction in order to prevent 
fraudulent transactions, said method comprising: 

initializing a smart card by receiving within the card a secret master key from a 
credit card issuer, the master key being kept secret; 

receiving, into the smart card, a data transmission from a merchant, wherein the 
data transmission includes unique merchant information, and a request for a billing 
digest; 

retrieving unique client information, from the smart card memory; 

retrieving the master key, the master key being known to the credit card issuer, 

creating the billing digest by hashing the unique client information, the master 
key and the unique merchant information onboard the smart card; and 

passing the billing digest, the unique merchant information and the unique client 
information to the requestor, 

9. (Original) The method recited in claim 8 above, wherein the unique client 
information includes a reference number, the reference number being one of a plurality of 
reference numbers provided to the client by the credit card issuer. 

10. (Original) The method recited in claim 8 above further comprises encrypting the 
unique client information and the unique merchant information prior to passing the 
information to the merchant. 
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1 1 . (Previously presented) A method for securing a transaction in order to prevent 
fraudulent transactions, said method comprising: 

initializing a smart card by receiving within the card a secret master key from a 
credit card issuer, the master key being kept secret; 

sending a data transmission to the smart card, wherein the data transmission 
includes unique merchant information and a request for a billing digest; 

receiving the billing digest, the unique merchant information and unique client 
information from the smart card, the billing digest being hashed from the unique 
merchant information, unique client information and the master key from the smart card; 
and 

transmitting the unique merchant information and unique client information from 
the smart card to a credit card issuer. 

12. (Original) The method recited in claim 1 1 above further comprises receiving a 
response from the credit caid issuer. 

1 3- (Currently amended) A method for securing a transaction in order to prevent 
fraudulent transactions, said method comprising: 

receiving, prior to the transaction, a secret master key from a third party, wherein 
the master key remains unchanged, and is not altered after the transaction, the third party 
storing a copy of the master key within the third party, the master key being kept secret; 

receiving, by the third party, a transaction request from a requestor, wherein the 
transaction request includes a digest and unique client informationffOLthe unique client 
information being associated with the master key, 

accessing the copy of the master key based on the unique client information; 

creating an authorization digest by hashing the unique client information and the 
copy of the master key; 

comparing, by the third party, the authorization digest with the digest from the 
requestor; and 
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returning a response to the requestor from the third party, the content of the 
response being based on an outcome of the comparison of the authorization digest with 
the digest from the requestor. 

14. (Original) The method recited in claim 13 above, wherein the request includes 
unique requestor information and creating the authorization digest further comprises 
hashing the unique requestor information. 

15. (Original) The method recited in claim 1 3 above, wherein the unique client 

inform ation includes a reference number, the reference number being one of a plurality of 
reference numbers provided to the client by the third party. 

16. (Original) The method recited in claim 15 above further comprises: 

accessing all previously used reference numbers associated with the unique client 
information; 

comparing the previously used reference numbers with the reference number 
contained in the unique client information; and 

returning a response to the requestor, the content of the response being based on 
the outcome of the comparison of the previously used reference numbers with the 
reference number contained in the unique client information. 

17. (Original) The method recited in claim 13 above, wherein creating the authentication 
digest by hashing is performed by a smart card. 

1 8. (Currently amended) The method recited in claim 1 3 above further comprises 
decrypting the unique client information prior accessing the copy of the master key. 

1 9. (Currently amended) The method recited in claim 44 14 above, wherein the third 
party is a credit card issuer, the transaction is a credit card transaction and the requestor is 
a merchant, further wherein the requestor information includes information describing «t 
loMt ono of a merchant identi fier which is specific to the credit card issuer, a transaction 
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identifier which is specific to the credit card issuer and purchase information which is 
specific to a purchase initiated by the client. 

20. (Previously presented) A method for securing a transaction in order to prevent 
fraudulent transactions, said method comprising: 

generating a billing digest in a customer's smart card, the billing digest being 
hashed from merchant information, customer information and a secret master key; 

receiving the master key from a credit card issuer upon an initialization of the 
smart card by the credit card issuer, the master key being associated with the customer 
information; 

creating an authentication digest by the credit card issuer, wherein the 
authentication digest is hashed from the merchant information, customer information and 
a master key associated with the customer infbnnation; 

comparing the authorization digest with the billing digest; and 
authorizing a transaction based on the comparison of the authorization digest with 
the billing digest. 

21. (Original) A method for securing a transaction comprising: 

indexing a secret master key to an account identifier for an account, wherein the 
account is between a customer and a financial institution; 

providing the master key to the financial institution and a smart card controlled by 
the customer; 

passing transaction data through a third party, wherein the transaction data 
includes at least the customer account identifier, third patty information and a billing 
digest which is created from the customer account identifier, the third party information 
and the master key. 

22. (Previously presented) A smart card for conducting secure transactions in order to 
prevent fraudulent transactions comprising: 

a input/output mechanism; 
a processor, and 
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a memory containing: 
financial account information; 

a secret master key received upon initialization of the smart card, the master key 
remaining unchanged throughout the use of the smart card, the master key being received 
from a third party; 

functional hashing algorithm; 

an executable application, for executing on the processor, for invoking the 
functional hashing algorithm, wherein the functional hashing algorithm creates a digest 
from the financial account information and the master key and further wherein the 
executable application transmits, via the input/output mechanism, the digest and the 
financial account information to a requestor for approval by the third party. 

23. (Currently amended) A system for conducting secure transactions in order to 
prevent fraudulent transactions comprising: 

a client smart card for creating a billing digest from a resident client information, 
a resident secret master key and imported merchant information; 

the master key being received from a financial institution upon initialization of the 
smart card, the master key remaining unchanged after use of the smart card, the master 
key being kept secret, and the master key being associated with the resident client 
information; 

a merchant system for requesting the billing digest and for passing secure 
transaction information and the billing digest to the financial institution, wherein the 
transaction information comprises the client information, and the imported merchant 
infoimation; and 

the financial institution for receiving the transaction information and billing digest 
and for authorizing a transaction by: 

accessing a master key stored within the financial institution based on the client 
information; 

creating an authorization digest from the master key stored in the financial 
institution!! ]]> the client information and the merchant information; and 
comparing the authorization billing digest with the billing digest. 
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24. (Previously presented) A system for securing a transaction in order to prevent 
fraudulent transactions compri sit) g: 

receiving means for receiving a secret master key from a third partition prior to 
the transaction, the master key remaining unchanged after the transaction, the master key 
being kept secret; 

receiving means for receiving a request for a digest from a requestor, 

retrieving means for retrieving the master key; 

retrieving means for retrieving unique client information; 

the client information being associated with the master key; 

creating means for creating the digest by hashing the unique client information 
and the master key; and 

returning means for returning the digest and the unique client information to the 
requestor, wherein the digest and the unique client information will be used for 
transacting with the third party. 

25. (Original) The system recited in claim 24 above, wherein the request further 
comprises unique requestor information and creating the digest further comprises hashing 
the unique requestor information. 

26. (Original) The system recited in claim 24 above, wherein the request includes unique 
merchant information which is used to access the master key. 

27. (Original) The system recited in claim 24 above, wherein the unique client 
information includes a reference number, the reference number being one of a plurality of 
reference numbers provided to the client by the third party. 

28. (Original) The system recited in claim 24 above, wherein the creating means for 
creating the digest by hashing is performed by a smart card. 
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29. (Original) The system recited in claim 24 above further comprises encrypting means 
for encrypting the unique client information prior to returning the unique client 
information. 

30. (Currently amended) The system recited m claim 34 25 above, wherein the 
transaction is a credit card transaction, the third party is a credit card issuer and the 
requestor is a merchant, further wherein the unique requestor information includes 
information describing at loast ono of a merchant identifier which is specific to the credit 
card issuer, a transaction identifier which is specific to the credit card issuer and 
transaction data which is specific to a transaction initiated by the client. 

3 1 . (Original) The system recited in claim 24 above further comprises: 

fingerprint reading and identification means for reading a fingerprint and 
authorizing a client based on an identity of a client's fingerprint. 

32. (Currently amended) A system for securing a transaction in order to prevent 
fraudulent transactions compri sing: 

providing means for providing from a third party a secret master key to a client, 
the master key remaining unchanged after the transaction; 

receiving means for receiving a transaction request ftom a requestor, wherein the 
transaction request includes a digest and unique client information, the digest being 
created utilizing the master key provided to the client and the unique client 
information^;]]* the unique client information being associated with the master key; 

accessing means for accessing, by the third party, a master key stored within the 
third party based on the unique client information; 

creating means for creating an authorization digest by hashing the unique client 
infoimation and the master key; 

comparing means for comparing the authorization digest with the digest from the 
requestor; and 
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returning means for returning a response to the requestor, the content of the 
response being based on the outcome of the comparison of the authorization digest with 
the digest from the requestor. 

33. (Original) The system recited in claim 32 above, wherein the request includes unique 
requestor information and creating the authorization digest further comprises hashing the 
unique requestor information. 

34. (Original) The system recited in claim 32 above, wherein the unique client 
information includes a reference number, the reference number being one of a plurality of 
reference numbers provided to the client by the third party. 

35. (Original) The system recited in claim 34 above further comprises: 

accessing means for accessing all previously used reference numbers associated 
with the unique client information; 

comparing means for comparing the previously used reference numbers with the 
reference number contained in the unique client information; and 

returning means for returning a response to the requestor, the content of the 
response being based on the outcome of the comparison of the previously used reference 
numbers with the reference number contained in the unique client information, 

36. (Original) The system recited m claim 32 above, wherein creating the authentication 
digest by hashing is performed by a smart card. 

37. (Currently amended) The system recited in claim 32 above further comprises 
decrypting the unique client information prior accessing the copy of the master key. 

38. (Currently amended) The system recited in claim 22 33 above, wherein the 
transaction is a credit card transaction, the third party is a credit card issuer and the 
requestor is a merchant, further wherein the requestor information includes information 
describing at l e ast ono of a merchant identifier which is specific to the credit card issuer, 
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a transaction identifier which is specific to the credit card issuer and transaction data 
which is specific to a transaction initiated by the client. 

39. (Previously presented) A computer program product for securing a transaction in 
order to prevent fraudulent transactions embodied on a computer readable medium 
comprising: 

providing instructions for providing from a third party a secret master key, the 
master key remaining unchanged after the transaction; 

receiving instructions for receiving a request for a digest from a requestor; 

retrieving instructions for retrieving the master key; 

retrieving instructions for retrieving unique client information; 

the master key being associated with the client information; 

creating instructions for creating the digest by hashing the unique client 
information and the master key; and 

returning instructions for returning the digest and the unique client information to 
the requestor, wherein the digest and the unique client information will be used for 
transacting with the third party. 

40- (Previously presented) A computer program product for securing a transaction in 
order to prevent fraudulent transactions embodied on a computer readable medium 
comprising: 

initializing instructions for initializing a smart card by receiving within the card a 
secret master key from a credit card issuer; 

receiving instructions for receiving, into the smart card, a data transmission from 
a merchant, wherein the data transmission includes unique merchant information, and a 
request for a billing digest; 

retrieving instructions for retrieving unique client information, from the smart 
card memory; 

the unique client information being associated with the master key; 
retrieving instructions for retrieving the master key, the master key being 
provided by the credit card issuer; 
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creating instructions for creating the billing digest by hashing the unique client 
information, the master key and the unique merchant information onboard the smart card; 
and 

passing instructions for passing the billing digest, the unique merchant 
infonnation and the unique client information to the requestor. 
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